12-18-2015 02:03 PM
I am running CNA 6.2 and am trying to add a WS-C2960S-24PS-L switch to an existing Community. Every time I try to add the switch I get "Authentication Failure".
I can bring up the switch just fine on its own in CNA and fully configure it, but I cannot join it to my existing Community. What am I doing wrong? I have VTP mode set to transparent on the new switch and have manually configured the management VLAN on it and assigned an IP. I have it plugged into a current community-member switch
Thanks in advance.
Solved! Go to Solution.
12-30-2015 01:22 PM
12-24-2015 08:55 AM
Any advice?
12-28-2015 07:17 PM
I take it you have the correct username/password or AAA authentication setup for this switch,
if using Tacacs or radius is the new switch in the AAA server database?
if using local is the privilege level setup correctly?
12-29-2015 08:35 AM
I use local authentication. I have username setup with privilege level set to 15. Also have enabled:
aaa new-model
aaa authentication login default local
aaa authorization exec default local
aaa authorization network default local
ip http server
ip http authentication local
ip http secure-server
12-29-2015 03:03 PM
as a matter of interest if you try and discover it as a read only do you still get the same problem, also I assume you can ping the switch from the device that is running CNA, also I assume you can telnet/ssh into the switch ok
12-29-2015 04:21 PM
What do you mean by discover it as read only?
The switch shows up in CNA. I can bring up its "Device Manager". I can ping the unadded switch from any switch in my community and my unadded switch can ping any of the switches in the Community. It joins the VTP domain just fine and VLANs are replicated 100%. And I can ssh into the unadded switch.
12-29-2015 10:34 PM
I dont know about CNA 6.2 but earlier versions you had the option of discovering with priv 7 read only, or 15 read/write
You can not have more than 40 devices in a community according to CNA 6.2 release notes.You are not trying to exceed that are you?
see comunity limitations from release notes below
These limitations apply only to communities:
The Topology view does not show the internal Gigabit Ethernet link between routers and the EtherSwitch service modules NME-16ES-1G and NME-X-23ES-1G.
Open one Network Assistant session per desktop per community. (CSCeh53619)
12-29-2015 11:42 PM
I only have about 12 items in my Community.
And I have tried, what I think is ready only mode, and there's no difference. Maybe I should try an earlier version of CNA?
12-30-2015 10:02 AM
If I create a new community, then the switch connects just fine with all the other switches. Weird.
Maybe I'll just delete the community I have and create a new one.
12-30-2015 01:22 PM
Hi,
Glad you got it sorted
12-30-2015 01:23 PM
Thanks for your help
12-07-2017 07:44 AM
For anybody having this problem, I came up with an alternative that doesn't require rebuilding the entire community.
My situation was nearly identical to the OP. I had 20+ switches in a community and one day, I went to add a switch to the Community that had previously been there. When I went to add it via the Topology View (right-click and select Add To Community), CNA would just hang on "Discovering 192.168.100.xxx." If I went to Modify the Community and add it by IP address, it would just prompt "Failed - authentication failure." The problem is that nothing seemed to trigger CNA to prompt me for credentials. Console and HTTP access were fine - credentials were known but the key is they are different from what they were last time CNA worked with this switch.
I really did not want to start a new Community. I was very happy with my topo view! I then realized that CNA keeps the passwords encrypted in files located in C:\Users\<username>\.networkassistant\password_store. I exited CNA, renamed the two files with a .X on the end, and relaunched CNA. Upon choosing the Community, I was prompted to enter the username/password for a couple of switches. Since most of them use the same HTTP user, of my 20+ switches I only needed to enter 5 username/password combinations. And... one of them was for the switch I was struggling with.
The best part is that my Topo View was preserved, as were my devices and neighbors and exclusions.
04-10-2018 04:28 PM
11-28-2018 10:51 PM
12-30-2020 07:25 PM
Thank you for very helpful advice.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide